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METHOD AND SYSTEM FOR DELIVERING CONFIDENTIAL INFORMATION 

FIELD OF THE INVENTION 

The present invention relates generally to the delivery of confidential information. 
More particularly, the present invention relates to a trusted party holding confidential 
5 information that is released to application providers upon authorisation of a user. 

BACKGROUND OF THE INVENTION 

The area of mobile internet services is an emerging area of information service 
delivery. It is now possible to provide services to consumers via a wireless device that are 
appropriate for their locations. This is accomplished by using the cellular infi-astructure to 

10 determine the location of the subscriber using such technologies such as the global 
position system or signal triangulation. This information, along with other confidential 
information such as billing address and user name, can then made available to application 
providers who ultimately provide the location based service. This leads to a problem of 
protecting the privacy, of the consumer and only releasing his location to services to which 

IS he has subscribed, purchased or otherwise authorised. Additionally, the subscriber should 
be informed that a service he is about to access requires the release of confidential 
information. The subscriber should also have the option to accept or reject the request to 
release information. 

It is, therefore, desirable to provide a system and method for the delivery of 
20 confidential information firom the digital cellular provider to an application provider after 
obtaining the authorisation, preferably a non-repudiable authorisation, of the user of the 
digital cellular device. 

SUMMARY OF THE INVENTION 

It is an object of the present invention to obviate or mitigate at least one 
25 disadvantage of prior art confidential information release systems. 

In a first aspect of the present invention there is provided a method of providing 
subscriber information about a subscriber to an application provider fi^om an information 
gateway in a wireless network. In the first step of the method, the information gateway 
receives, from the application provider, a request for subscriber information. In the 
30 second step, at least a portion of the requested subscriber information is determined to 
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require subscriber approval prior to release to the application provider. In the third step, 
approval from the subscriber for the release of the requested subscriber information is 
requested. In the final step of the method, the requested subscriber information is 
provided to the application provider from the information gateway upon receiving the 

5 subscriber approval. In an embodiment of the present aspect of the invention, the 
subscriber information is selected from a list including geographic location of tiie 
subscriber, billing account information, and subscriber address information. 

An embodiment of the first aspect of the present invention includes determining 
that the requested subscriber information does not require subscriber approval prior to 

10 release to the application provider and providing the requested subscriber information to 
the application provider. In an alternate embodiment, the step of determining that ttie 
requested subscriber information does not require subscriber approval includes querying 
an application provider database to determine if the application provider is pre-approved 
to have access to the requested subscriber information. In another embodiment, the step of 

15 determining that the requested subscriber information does not require subscriber approval 
includes querying a subscriber information database to determine if the application 
provider has pre-approved the release of the requested subscriber information. 

In a further aspect of the present invention the step of requesting includes 
transmitting a request for non-repudiable subscriber authorisation for the release of the 

20 requested subscriber information, where transmitting the request for non-repudiable 
subscriber authorisation optionally includes establishing a secure data channel. In yet a 
further embodiment of the present invention, the step of providing the requested subscriber 
information to the application provider includes encrypting the requested subscriber 
information prior to transmission to the application provider. 

25 In a second aspect of the present invention there is provided a subscriber 

information system for providing subscriber information to an application provider in 
response to a received request. The subscriber information system comprises a subscriber 
information database and an information access gateway. The subscriber information 
database is for storing subscriber information. The inforaiation access gateway is in a 

30 wireless network and is for requesting and receiving user approval for the release of 

information to the application provider, and for providing information stored in the 

subscriber information database to the application provider in response to the request upon 

receiving the subscriber approval. In an embodiment of the second aspect of the present 
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invention, the information gateway includes means for determining pre-^proval of 
information release from the subscriber information database if the subscriber has pre- 
approved the release of the requested information to the requesting application provider. 
The means for determining pre-approval of information release can include a subscriber 

5 pre-approval database for storing the information pre-approved for release to application 
providers specified by the subscriber and an application provider database for storing 
information about the indicating subscriber information that can be released an application 
provider without subscriber approval. In another embodiment of the present aspect of the 
invention, there is further included a non-repudiation centre, operatively connected to the 

10 information gateway, for providing a channel to the subscriber through which non- 
repudiable approval for release of subscriber information can be received. In various other 
embodiments, the subscriber infomiation database contains information indicating that the 
requested information requires subscriber approval prior to each transmission, information 
indicating subscriber information never requires subscriber approval, and information 

15 indicating which subscriber information requires subscriber approval when the subscriber 
first subscribes to a service offered by the application provider. 

In a third embodiment of the present invention, there is provided a method of 
delivering confidential information to an application provider through an information 
gateway on a digital wireless network. In a first step, a request for confidential information 

20 pertaining the a subscriber from the application provider is received. In a second step the 
requested confidential information is segregated into approved for transmission and non- 
approved for transmission sets. In a third step a request is made through a non-repudiation 
centre, that the user of the digital wireless device authorise the release of the non-approved 
information. In a fourth step authorisation from the user of the digital wireless device to 

25 release the non-approved information is received through the non-repudiation centre. In a 
final step the requested confidential information is provided to the application provider. In 
an embodiment of the third aspect of the present invention, the confidential information is 
selected from a list including geographic location of the subscriber, billing account 
information, and subscriber address information. In another embodiment of the present 

30 invention, the step of segregating the requested confidential infomiation includes 

examining a subscriber information database to determine if a subscription with the 

application provider exists. In a fiirther embodiment of the present invention, the step of 

segregating the requested confidential information includes examining digital wireless 
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network preferences, the subscriber information database and an application provider 
database. 

Other aspects and features of the present invention will become apparent to those 
ordinarily skilled in the art upon review of the following description of specific 
5 embodiments of the invention in conjunction with the accompanying figures. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Embodiments of the present invention will now be described, by way of example 
only, with reference to the attached Figures, wherein: 

Figure 1 is an illustration of the system of the present invention; and 
10 Figure 2 is a flow chart illustrating a method of the present invention. 

DETAILED DESCRIPTION 

Generally, the present invention provides a method and system for obtaining non- 
repudiable authorisation for providing confidential information about a digital wireless 
subscriber to an application provider. 

15 One embodiment of the present invention consists of a digital wireless device 100, 

such as a digital cellular phone, that is assumed to have a user. Application provider (AP) 
104 provides a service to the user but requires the release of subscriber information to 
deliver service. AP 104 may be on the public Intemet or a private network. In many 
instances the subscriber information requested by AP 104 is confidential, and includes 

20 billing or geographic information, but in other cases the information is non-confidential, 
where reference is made to confidential information it should be understood that 
confidential information is a subset of the subscriber information. 

Digital wireless network 102 is a wireless network operator that delivers data and 
information services to digital wireless device 100. Digital wireless network 102 includes 

25 of a number of elements as illustrated. Included in the elements are a digital wireless 
network preferences database 106 which contains a definition of carrier poUcies regarding 
release of confidential and subscriber information related to digital wireless device 100. 
For example, digital wireless network preferences database 106 may assign each piece of 
confidential information a status of "never release*' or "subscriber approve**. 'TSTever 

30 release" indicates that AP 104 never has access to the specific data. "Subscriber approve" 
indicates that the subscriber must approve the release of the confidential data to AP 104 
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prior to the information being delivered. Associated with the network preferences database 
106 is an application provider database 108 containing the information that digital wireless 
network 102 requires to allow AP 104 to deliver a service. 

Another element in digital wireless network 102 is a subscriber information 

5 database 110. The subscriber information database 110 includes information associated 
with the digital wireless device 100 including subscriber preferences which define policies 
to be followed regarding release of confidential information associated with the digital 
wireless device 100. Typically the user of digital wireless device 100 will place limits on 
the information that is releasable to AP 104. For example, for each piece of subscriber 

10 information the user may specify "never release", "release on subscription purchase", 
"requires approval on subscription purchase" or "requires approval on each access". A 
"never release" status indicates that the user would never approve the release of specific 
information. "Release on subscription purchase," indicates digital wireless network 102 
should release the confidential information to APs fi-om whom the user has piirchased a 

15 service and this release of confidential information does not require specific user approval. 
"Requires approval on subscription purchase," indicates that the user must approve the 
release of the specific information, preferably through a non-repudiation technique, at the 
time a subscription is purchased. "Requires approval on each access" indicates that user 
must be informed each time the confidential information is requested. The above 

20 description of the subscriber preferences is indicative of the types of algorithms that can 
be used to restrict the releases of confidential information. One skilled in the art could 
devise a number to extensions to the algorithms that enhance the capabilities of the 
subscriber to control the release of confidential information. Other information that may 
be contained in the subscriber information database includes subscription information. The 

25 subscription information includes a summary of the services to which the subscriber has 
subscribed. For each subscription, a list of the confidential information which the 
subscriber has approved release to AP 104 is maintained. The subscription information 
may also contain data such as subscription duration; number of uses permitted and cost of 
access. 

30 Associated with subscriber information database 100 is a confidential information 

database 112. Confidential information database 112 contains information about the user 
of digital wireless device 100, such as accounting infomiation, and may include 
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geographic information. It is the information in the confidential information database 112 
that AP 104 requests from digital wireless network 102. 

Geographic information may be provided through a number of techniques known 
to those skilled in the art, such that a system requesting the geographic information queries 
5 confidential information database 112 as it would for information in any other database 
field. In practice, this infomiation is dynamic in nature, and is not stored in the database 
112. Instead the geographic location of a mobile subscriber is computed in response to a 
request. Techniques for seamlessly presenting real time data in response to a database 
query are well known in the art, and a reference to location infomiation being stored in a 
10 database should be understood to include such embodiments. 

Information access gateway 114 provides AP 104 with information fi'om the 
confidential information database 112. Information access gateway 114 optionally has a 
secure and authenticated communications channel with AP 104, and only releases 
information fi-om the confidential information database 112 upon receiving instruction to 
15 do so fi-om the user of digital wireless device 100. 

The non-repudiation centre 116 obtains non-repudiable user authorisation for the 
release of subscriber infomiation fi-om the confidential information database 112. 
Optionally, prior to seeking approval, the non-repudiation centre informs the user of 
digital wireless device 100 of the confidential information that will be released. Non- 
20 repudiable proof of the authorisation can be obtained by the digital wireless network 102 
in a number of ways that are known to one of skill in the art. The identity of a device 
acting on digital wireless network 102 is authenticated at tiie beginning of the interaction 
between digital wireless network 102 and digital wireless device 100, making the 
collection of identity information in the approval process a simple task. Additionally, there 
25 presently exist methods of authenticating the user of the digital wireless device 100, in 
addition to simply authenticating the digital wireless device 100, these methods can be 
employed to provide non-repudiable evidence that the transfer of the confidential 
information was approved by the user of digital wireless device 100. The non-repudiation 
centre 116 can optionally interact with the subscriber information database 110 to update 
30 the information containing subscription information related to AP 104. In a presently 
envisioned embodiment the non-repudiation centre can interact with AP 104 and digital 
wireless device 100, not solely for obtaining non-repudiable authorisation for the transfer 

of confidential information, but could also be used to obtain non-repudiable authorisation 
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for transactions such as the purchase of services from AP 104. The combination of 
transaction authentication and obtaining authorisation for transferring information to the 
AP 104 could be combined in a single prompt to the digital wireless device 100, as will be 
explained below. 

5 The system as described above provides the ability to obtain authorisation from the 

user of digital wireless device 100 for transfers of subscriber information to an application 
provider 104. A detailed description of the method is presented below, but an overview of 
the method immediately follows. As was mentioned earlier, the digital wireless network 
102 classifies subscriber information into a number of categories, as does the user of the 

10 digital wireless device 100. When the digital wireless device 100 connects to AP 104, for 
the first time, a profile is established in the subscriber information database 110. AP 104 
typically requests a subset of the subscriber information maintained by the digital wireless 
network 102 in the confidential information database 112. For this information to be 
transmitted, the user of the digital wireless device 100 must agree. The information 

15 requested may have been classified by the user into one of several levels that detail the 
security required prior to releasing each piece of subscriber information. For example in 
one embodiment, the user may specify that certain pieces of information are to never be 
released, other pieces can be released to a select group of APs, still other pieces of 
information are to be released only after being approved, and the balance of the 

20 information can be released to anyone. The first time that the request is made by AP 104, 
the information that must be authorised is released only after getting non-repudiable 
authorisation, and depending upon the profile in the subscriber information database 110 
the authorisation to release the subscriber infomiation to AP 104 automatically is stored. 
The next time that the digital wireless device 100 connected to AP 104, AP 104 requests 

25 the subscriber information. The request for information by AP 104 is then compared to the 
digital wireless network preferences 106 and the subscription information stored in the 
subscriber infomiation database 110. Depending on the levels of seciirity that were 
established by the digital wireless network preferences 106 and the subscriber information 
database 110, authorisation for transmitting subscriber information may be avoided. AP 

30 104 makes its request to the information access gateway 114, which checks the digital 

wireless network preferences 106 and the subscriber information data base 110 and then 

sends the authorised infomiation. If some of the information that AP 104 requires is not 

releasable without authorisation from the digital wireless device 100, the information 
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access gateway 114 requests authorisation for the release of the subscriber mformation 
through non-repudiation centre 116. 

The system of the present invention is used in the following method to provide 
subscriber information to AP 104 after obtaining non-repudiable proof of permission. 

5 Digital wireless device 100 connects to AP 104 through digital wireless network 102 as 
shown in flow 150. The connection between digital wireless device 100 and AP 104 
provides AP 104 with a unique client identifier (client id) that is used to identify the digital 
wireless device 100. After receiving a connection from the digital wireless device 100, AP 
104 receives a request for a subscription service (also flow 150) and determines that it 

10 requires subscriber information associated with the digital wireless device 100. In the 
following example the request for subscriber information is paired with a transaction 
request, though one of skill in the art will recognise that a transaction request can be 
omitted without deviating from the scope of the present invention. AP 104 detemaines it 
must charge the user of digital wireless device 100 for the requested subscription service 

15 and subscriber information must also be released to successfully deliver the service. AP 
104 forwards the non repudiation centre 116 a transaction request, as shown in flow 152. 
The transaction request may include a service purchase price, client ID and a specification 
of required subscriber information along with other information. Alternatively, the non- 
repudiation centre 116 may access the application provider database 108 to obtain service 

20 purchase price, subscriber information required to deliver the service and other data 
regarding AP 104. 

Non-repudiation centre 116 examines the subscriber information required by AP 
104, and then examines the digital wireless network preferences 106, flow 154, and the 
subscriber information database 110, flow 158, to determine if the user of digital wireless 
25 device 100 must approve the release of the requested subscriber information. Additionally, 
the pxuxhase amount may require user approval and the generation of non-repudiation 
audit information. Either the purchase amount or the nature of the subscriber information 
required may trigger the need to get non-repudiation evidence from the user regarding the 
transaction. 

30 The digital wireless network 102 and non-repudiation centre 116 may use an 

authentication and non-repudiation technology such as secret PIN, PKI document signing, 
user identification and password combination, basic authentication, digest authmtication 
or a simple Yes/No prompt to accomplish user approval of charge and/or subscriber 
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information release. Non-repudiation centre 116 forwards digital wireless device 100 an 
approval request such as "Approve monthly subscription charge of $1 to your phone bill 
and the release of your location to Yellow Pages Directory Services?" as shown in flow 
158. Digital wireless device 100 transmits an approval response appropriate to the non- 

5 repudiation technology being employed as shown in flow 160. 

Upon receipt of approval response 160, non-repudiation centre 116 creates a record 
of the subscription purchase and subscriber information approved for release to AP 104 in 
subscriber information database 110, flow 162. A transaction and access response is then 
sent to AP 104, as shown by flow 164, to indicate subscription has been created; payment 

10 for the service approved by the digital wireless network 102 and the client id is authentic. 
Information access gateway 114 then releases the subscriber information to AP 104, as 
shown in flow 166. 

In a subsequent session, digital wireless device 100 initiates a service request to 
AP 104 and provides a client id, as shown by flow 168. AP 104 forwards the client id and 

15 requested subscriber information to infomiation access gateway 114 as a subscriber 
information access request, flow 170. Information access gateway 114 accesses subscriber 
information database 110 , flow 172, to detemiine if AP 104 has a subscription with the 
specified client id. If no record of the subscription is found then there is no proof that AP 
104 has authorised access to the subscriber information associated with the client id and 

20 immediate access is denied, not shown, causing AP 104 to interact with non-repudiation 
centre 116 as previously described. If subscriber information database 110 replies that a 
subscription does exists, flow 174, information access gateway 114 examines digital 
wireless network preferences 106, subscriber information database 110, and application 
provider database 108, flows 176 178 and 180, to determine if the requested subscriber 

25 information should be released and if subscriber must approve the release. 

If the user of digital wireless device 100 must approve the release then information 
access gateway 114 may initiate a sequence to obtain non-repudiation evidence finom the 
user before subscriber information can be released, as described above. 

Information access gateway 114 retrieves the subscriber information and only 

30 returns subscriber information that is approved for release, as shown in flow 182. 

Information access gateway 114 then updates subscriber subscriptions in the subscriber 

information database 110 to reflect the fact that subscriber information has been provided 

to AP 104 and that subscription service has been accessed. 
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Subscriber information response 182 is generated and returned to AP 104 who in 
turn delivers service to digital wireless device, as shown in flow 184. Thus, the system and 
method of the present invention provide means for delivering subscriber information to an 
application provider through an inforaiation access gateway after securing non-repudiable 

5 authorisation for the transmission of the subscriber information from the user of the digital 
wireless device, with whom the information is associated. 

Figure 2 illustrates a method of the present invention. Digital wireless network 
102 receives an information request from an application provider, such as AP 104, in step 
200. The information request is divided into data sets representing which data has been 

10 pre-approved for release, and which data is unapproved for release in step 202. A request 
is transmitted to the user in step 204 to seek user approval for the release of the 
information in the unapproved data set. In step 206 a determination is made of whether or 
not approval for the release of the unapproved data has been received. If approval has 
been received the unapproved data set is transmitted to the application provider in step 

15 208. Upon completion of step 208, or if the user has not provided approval in step 206, 
the pre-approved data set is transmitted in step 210. In one embodiment of the present 
invention, the data is divided into pre-approved and unapproved data sets based on 
information associated with each of the data elements requested by the application 
provider and stored in a confidential information database. In another embodiment of the 

20 present invention, the information associated with data in the confidential information 
database that determines whether or not a data element is considered pre-approved or not, 
can be set to as value so that a select group of application providers can access certain data 
elements, while other application providers require user approval for access to the same 
data elements. In yet another embodiment of the present invention, all the data elements 

25 in the confidential information database require user approval and authentication for 
release. 

The determination that a particular requested information element is either pre- 
approved for transmission to an application provider, or requires approval prior to 
transmission, is affected by a number of factors that will be well understood by one skilled 
30 in the art. One of these factors is that certain information, such as the physical location of 
a subscriber, may be readily available during certain times, but requires approval in other 
time blocks. For example, the location of a user may be made available to an application 

provider during the business day, but may require the approval of the subscriber during 

-10- 



BNSDOCID: <WO. 



.03030571A1_L2 



wo 03/030571 



PCT/CA02/01493 



evenings and weekends, when the subscriber is not expected to be available for 
employment related functions. In another embodiment, the location of a subscriber may 
detemiine that various pieces of information are either accessible to application providers 
or require approval, for example a subscriber may be willing to freely provide their 
5 location to application providers in a particular city, but want to restrict that information 
when travelling. 

One of skill in the art will readily appreciate that though the above discussion has 
been directed to the release of subscriber information in a wireless network, the system 
and method discussed above can be readily applied to any network environment where 
10 there is a centralised system for storing subscriber information. Though it would be 
preferable that communications with the end user be non-repudiable, it is conceivable that 
this system can be employed without the implementation of the non-repudiable user 
connection. 

The above-described embodiments of the present invention are intended to be 
IS examples only. Alterations, modifications and variations may be effected to the particular 
embodiments by those of skill in the art without departing from the scope of the invention, 
which is defined solely by the claims appended hereto. 
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What is claimed is: 

1. A method of providing subscriber information about a subscriber to an application 
provider from an information gateway in a network, comprising: 

receiving, from the application provider, at the information gateway a request for 
5 subscriber information; 

determining that at least a portion of the requested subscriber information requires 
subscriber approval prior to release to the application provider; 

requesting approval from the subscriber for the release of the requested subscriber 
information; and 

10 providing the requested subscriber information to the Explication provider from the 

information gateway upon receiving the subscriber approval. 

2. The method of claim 1, wherein the information gateway is in a wireless network. 

15 3. The method of claim 1, further including the step of providing, to the application 
provider, flie portion of the requested subscriber information determined not to require 
subscriber ^proval prior to release. 

4. The method of claim 1 ftirther including determining that the requested subscriber 
20 information docs not require subscriber approval prior to release to the application 

provider; and 

providing the requested subscriber information to the application provider. 

5. The method of claim 1, wherein the subscriber information is selected from a list 
25 including geographic location of the subscriber, billing account information, and 

subscriber address information, subscriber preferences. 

6. The method of claim 4, wherein the step of determining that the requested 
subscriber information does not require subscriber approval includes querying an 

30 Explication provider database to determine if the application provider is pre-approved to 
have access to the requested subscriber information. 
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7. The method of claim 6, wherein the step of querying includes deterniining if the 
subscriber has purchased a subscription to a service requiring the release of the requested 
information. 

5 8. The method of claim 4, wherein the step of determining that the requested 
subscriber information does not require subscriber approval includes querying a subscriber 
infomiation database to determine if the application provider has pre-approved the release 
of the requested subscriber information. 

10 9. The method of claim 1, wherein determining that at least a portion of the requested 
subscriber information requires subscriber approval includes deterniining at least one of 
the present time and the geographic location of the subscriber. 

10. The method of claim 1, wherein the step of requesting includes transmitting a 
15 request for non-repudiable subscriber authorisation for the release of the requested 

subscriber information. 

11. The method of claim 10, wherein transmitting the request for non-repudiable 
subscriber authorisation includes establishing a secure data channel. 

20 

12. The method of claim 1, wherein the step of providing the requested subscriber 
information to the application provider includes encrypting the requested subscriber 
infomiation prior to transmission to the application provider. 

25 13. A subscriber information system for providing subscriber infonnation to an 
application provider in response to a received request, the subscriber information system 
comprising: 

a subscriber information database for storing subscriber information; and 
an information access gateway in a network for requesting and receiving user 
30 approval for the release of information to the application provider, and for providing 
information stored in the subscriber information database to the application provider in 
response to the request upon receiving the subscriber approval. 
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14. The subscriber information system of claim 13, wherein the information access 
gateway is in a wireless network. 



15. The subscriber information system of claim 13, wherein the information access 
5 gateway includes means for determining pre-approval of information release from the 

subscriber information database if the subscriber has pre-approved the release of the 
requested information to the requesting application provider. 

1 6. The subscriber information system of claim 15, wherein the means for determining 
10 include a subscriber pre-approval database for storing the information pre-2q)proved for 

release to application providers specified by the subscriber. 

1 7. The subscriber information system of claim 1 5, wherein the means for determining 
include an application provider database for storing information about the indicating 

15 subscriber information that can be released to an application provider without subscriber 
approval. 

18. The subscriber information system of claim 13 further including a non-repudiation 
centre, operatively connected to the information access gateway, for providing a channel 

20 to the subscriber through which non*repudiable approval for release of subscriber 
information can be received. 

1 9. The subscriber information system of claim 1 3, wherein the subscriber information 
database contains information indicating that the requested information requires subscriber 

25 approval prior to each transmission. 

20. The subscriber information system of claim 13, wherein the subscriber information 
database indicates which subscriber information never requires subscriber approval. 

30 21 . The subscriber information system of claim 13, wherein the subscriber information 
database indicates which subscriber information requires subscriber approval when the 
subscriber first subscribes to a service offered by the application provider. 
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22. A method of delivering confidential information to an application provider through 
an information gateway on a digital wireless network comprising: 

receiving a request for confidential information pertaining the a subscriber from 
the application provider; 
5 segregating the requested confidential information into approved for transmission 

and non-approved for transmission sets; 

requesting, through a non-repudiation centre, that the user of the digital wireless 
device authorise the release of the non-approved information; 

receiving, through the non-repudiation centre, authorisation from the user of the 
10 digital wireless device to release the non-approved information; and 

providing, to the application provider, the requested confidential information. 

23. The method according to claim 22, wherein the confidential information is selected 
from a list including geographic location of the subscriber, billing account information, 

1 5 and subscriber address information. 

24. The method of claim 22, wherein the step of segregating the requested confidential 
information includes examining a subscriber information database to determine if a 
subscription with the appUcation provider exists. 

20 

25. The method of claim 22, wherein the step of segregating the requested confidential 
information includes examming digital wireless network preferences, the subscriber 
information database and an application provider database. 

25 
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